Security & Privacy Officer

6 maanden geleden


Heerenveen, Nederland Accell Group Voltijd

Do you have knowledge of IT security and privacy legislation? With experience in coordinating security assessments? How about writing and maintaining security policies? Or managing Incident Response processes with colleagues in an international environment? If you answer yes to some or all of these, then you might be our new colleague

About the role
The Security & Privacy officer provides input and helps define and drive the Information Security & Privacy strategy, policies, and maturity. You are recognized as an Information Security expert by internal and external stakeholders with proven strong technical capabilities.

You will be working within a dynamic international environment where our bicycle brands are central. You will report to the CISO and work closely with other Security & Privacy Officers, the Legal team, and colleagues across the Accell teams to help meet the target of best-in-class security for Accell. Your tasks and responsibilities;

Security incident management - Understand and improve the security incident management and data breach processes. Work with third party suppliers to respond to and lead incident management processes for minor or major incidents, related to your experience level; Risk Analysis - Perform security risk assessments, creating visibility and mapping of information security and privacy risks; Security & Privacy Posture - Advise and consult on priorities of information security and privacy, tracking progress and managing/coordinating the resolution and/or mitigation of these to strengthen the Accell security posture; Develop Security Awareness - Responsible for improving security awareness within the company – communicate to, and train employees where required. Manage existing security awareness tooling and content; Strategy & New Developments - Help define, implementation and coordination of the Information Security strategy, policies, and maturity improvements. Identify new security developments and work with the team to make sure they are reflected in the strategy/year plans; Policies & standards - Maintain and monitor compliance to information security policies, standards, and requirements for Accell IT environment, in line with best industry practices; making sure these are in place and followed.

We believe Cycling moves the world forward
Accell IT is part of Accel Group and provides a complete range of IT services to Accell Group and its operating companies at home and abroad. Accell Group makes bicycles, bicycle parts and accessories. We are the European market leader in e-bikes and the second largest in bicycle parts and accessories. Well-known bicycle brands in our portfolio include Haibike, Winora, Ghost, Batavus, Koga, Lapierre, Raleigh, Sparta, Babboe and Carqon. XLC is our brand for bicycle parts and accessories. 

What do you bring
This position is a good fit for you if you:

Are analytical, can think in a process-oriented way, with an attention to detail - but you are also willing to work pragmatically to get the job done; Have a passion for Security & Privacy and are looking for a role where you can combine your knowledge with strong communication skills; You are eager to learn, independent and are proactive; You understand stakeholder management and how to report risks to senior members of the organization; You keep up to date on the latest developments in the information security field; Thrive in a dynamic environment and can think on your feet; Want to work in an international environment.

To be successful in the positions, we would like to see the following in your profile*:

HBO work/thinking level and an education in ICT, Cyber Security, Security Management or similar; Completed an HBO or WO study and already have proven experience in a similar position (within the IT sector); Knowledge and experience of security in the Microsoft cloud infrastructure, with related Microsoft 365 or Azure certification such as AZ-500. Experience of using OneTrust (or a similar tool) to manage Security & Privacy risk; Knowledge and experience of security & privacy related frameworks, best practices, or regulations - whether that is the NIST CSF, ISO 27001, CIS Controls, or GDPR; Professional certification such as CISSP, CISM, CISA, or CIPP/E certification is a plus; Experience of performing internal audits, along with experience of external audit involvement; Command of the English and Dutch languages;

*Do you not (yet) have all the required experience and knowledge, but do you feel you match the profile? We would also like to get in touch with you. Indicate in your motivation how you can be of added value and maybe we will also see a match

What we offer

The possibility to work partly remote and flexible working hours; Competitive benefits and a salary aligned with market standards; 28 vacations days; Travel allowance; Pleasant and informal working atmosphere; Plenty of individual learning and development opportunities; Attractive staff discount on bikes and bike accessories.
  • Information Security Expert

    3 weken geleden


    Heerenveen, Friesland, Nederland Accell Group Voltijd

    About the Role:The Accell Group is seeking an Information Security Expert to join our dynamic international team. As a key member of our IT department, you will be responsible for defining and driving the Information Security strategy, policies, and maturity.Key Responsibilities:Security Incident Management: Improve security incident management and data...

  • Bedrijfsjurist

    1 week geleden


    Heerenveen, Nederland Arriva Voltijd

    **Bedrijfsjurist**: **Bedrijfsjurist**: - Vakgebied- Staf en management- Locatie- Heerenveen- Uren per week- 40- Niveau- HBOOpenbaar vervoer waar je op kan vertrouwen, dat is waar wij ons bij Arriva Nederland hard voor maken! Jij levert daaraan als Bedrijfsjurist een belangrijke bijdrage. **Zo ziet je werk er uit **Als bedrijfsjurist bij Arriva ben je het...